{"data":{"id":"08f2a9b1-e4d2-4604-8d5b-8090b998883a","title":"GHSA-m8gf-v64p-gfmg: BabelDOC: Arbitrary Code Execution via CMap Pickle Deserialization in babeldoc/pdfminer/cmapdb.py","summary":"BabelDOC's PDF parser has a critical vulnerability where it deserializes untrusted pickle data from CMap files without proper path validation. An attacker can craft a malicious PDF with a specially encoded filename in the `/Encoding` name field (e.g., `/#2Ftmp#2Fattacker#2Fevil`, which decodes to `/tmp/attacker/evil`) that tricks the path-joining logic into loading an attacker-controlled pickle file instead of a trusted one, leading to arbitrary code execution (running attacker code with the program's permissions).","solution":"N/A -- no mitigation discussed in source.","labels":["security"],"sourceUrl":"https://github.com/advisories/GHSA-m8gf-v64p-gfmg","publishedAt":"2026-07-10T19:32:44.000Z","cveId":"CVE-2026-54071","cweIds":null,"cvssScore":null,"cvssSeverity":"high","severity":"high","attackType":["supply_chain"],"issueType":"vulnerability","affectedPackages":["BabelDOC@<= 0.6.2 (fixed: 0.6.3)"],"affectedVendors":["HuggingFace"],"affectedVendorsRaw":["BabelDOC"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":"unknown","epssScore":0,"patchAvailable":true,"disclosureDate":"2026-07-10T19:32:44.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"moderate","impactType":["confidentiality","integrity","availability"],"aiComponentTargeted":"framework","llmSpecific":false,"classifierConfidence":0.85,"researchCategory":null,"atlasIds":["AML.T0010"]}}